From owner-cvs-all  Tue Jul 31  9:17: 6 2001
Delivered-To: cvs-all@freebsd.org
Received: from elvis.mu.org (elvis.mu.org [216.33.66.196])
	by hub.freebsd.org (Postfix) with ESMTP
	id C1EBE37B406; Tue, 31 Jul 2001 09:16:56 -0700 (PDT)
	(envelope-from bright@elvis.mu.org)
Received: by elvis.mu.org (Postfix, from userid 1192)
	id B8FCB81D05; Tue, 31 Jul 2001 11:16:56 -0500 (CDT)
Date: Tue, 31 Jul 2001 11:16:56 -0500
From: Alfred Perlstein <bright@mu.org>
To: Robert Watson <rwatson@FreeBSD.org>
Cc: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
Subject: Re: cvs commit: src/sys/kern kern_prot.c
Message-ID: <20010731111656.B26571@elvis.mu.org>
References: <200107311548.f6VFmMi71135@freefall.freebsd.org> <20010731111224.A26571@elvis.mu.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <20010731111224.A26571@elvis.mu.org>; from bright@mu.org on Tue, Jul 31, 2001 at 11:12:24AM -0500
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
List-ID: <cvs-all.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20cvs-all>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20cvs-all>
X-Loop: FreeBSD.ORG

* Alfred Perlstein <bright@mu.org> [010731 11:12] wrote:
> * Robert Watson <rwatson@FreeBSD.org> [010731 10:53] wrote:
> > rwatson     2001/07/31 08:48:21 PDT
> > 
> >   Modified files:
> >     sys/kern             kern_prot.c 
> >   Log:
> >   o Introduce new kern.security sysctl tree for kernel security policy
> >     MIB entries.
> >   o Relocate kern.suser_permitted to kern.security.suser_permitted.
> 
> Sysctls _probably_ shouldn't be relocated, since they point to
> memory locations and/or functions there's really nothing wrong with
> providing the old one just to keep people's startup scripts from
> failing on them.

Sorry, I'm tired, I didn't mean to be overly obtuse, what I mean
is that it's trivial to keep the old sysctl MIB around (as long
as it's dynamic) since you can just alias them to each other.

Like so:

SYSCTL(_kern, &foo, suser_permitted,...);
SYSCTL(_kern_security, &foo, suser_permitted,...);

This will preserve backward compatibility.  It would be interesting
to add to sysctl a means of doing this:

a) providing linkage to note moved sysctls (so we can remove the old
crufty 'links' in 6.0)
b) by default hiding links to supress usage and possibly having
sysctl or the kernel log the usage of depricated (sp?) sysctls.

oh, yeah, and being able to have sysctl retrieve those pesky comments
that document them, that would be l33t as well. :)

-- 
-Alfred Perlstein [alfred@freebsd.org]
Ok, who wrote this damn function called '??'?
And why do my programs keep crashing in it?

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message